Hi,
I'm using trunk and noticed that inline img srcs are broken. E.g. in a
ui.xml file with:
<img src="{resources.theImage.getUrl}"/>
Leads to JavaScript like:
sb.impl.string += "' src='";
$append_3(sb, htmlEscape(
isSafeUri('data:image/...')
? 'data:image/...'
: '#'));
However, isSafeUri doesn't treat the data: scheme as safe, so the src
attribute ends up being #.
Switching the img to a gwt:Image restores the functionality, because
the js just does f_Image.state.setUrl(f_Image, 'data:image/...') and
no safe uri checking is done.
I also tried changing it to "src={...theImage.getSafeUri}", thinking
that might avoid the isSafeUri check, but uibinder failed saying SafeUri
can't be used as a String.
I'm not an expert on SafeUri, so am unsure whether data: just needs to
be added to the isSafeUri check or if something else should be done.
Thanks,
Stephen
--
http://groups.google.com/group/Google-Web-Toolkit-Contributors
